HCNP-Security Real Exam Questions and Answers FREE H12-722 Updated on Aug 01, 2021 [Q45-Q69]

HCNP-Security H12-722 Real Exam Questions and Answers FREE Updated on Aug 01, 2021

H12-722 Ultimate Study Guide -  TorrentExam

NEW QUESTION 45
Which of the following are the upgrade methods for the anti-virus feature database of Huawei USG6000 product? (Multiple Choices)

• A. Local upgrade
• B. Online upgrade
• C. Automatic upgrade
• D. Manual upgrade

Answer: A,B

 

NEW QUESTION 46
Which of the following are the network layer attacks of the TCP/IP stack? (Multiple Choices)

• A. Buffer overflow
• B. Address scan
• C. Port scanning
• D. IP spoofing

Answer: B,D

 

NEW QUESTION 47
File filtering technology can filter files based on their application, file transfer direction, file type, and file extension.

• A. TRUE
• B. FALSE

Answer: A

 

NEW QUESTION 48
For compressed files, the virus detection system can directly detect.

• A. True
• B. False

Answer: A

 

NEW QUESTION 49
For the URL is http://www.abcd.com:8080/news/education.aspx?name=tom&age=20, where is the path option?

• A. http://www.abcd.com:8080/news/education.aspx
• B. /news/education.aspx
• C. /news/education.aspx?name=tom&age=20
• D. http://www.abcd.com:8080

Answer: B

 

NEW QUESTION 50
With regard to traditional firewalls, which of the following statements are correct? (Multiple choice)

• A. It is unable to effectively resist the spread of viruses from the Internet to the internal network.
• B. Lack of effective protection against application layer threats.
• C. Cannot accurately control various applications such as P2P, online games, etc.
• D. Can quickly adapt to changes in threats.

Answer: A,B,C

 

NEW QUESTION 51
IPS can't detect which of the following threats?

• A. Worm
• B. DoS
• C. Virus
• D. Spam

Answer: D

 

NEW QUESTION 52
After the data file hits the whitelist of the firewall anti-virus module, the firewall will no longer do virus detection on the file.

• A. True
• B. False

Answer: A

 

NEW QUESTION 53
Which of the following statements about intrusion detection/defense devices are correct? (Multiple Choice)

• A. Can quickly adapt changes in threats.
• B. Protect the intranet from external attacks and suppress malicious traffic, such as spyware, worms, etc., flooding and spreading to the intranet.
• C. Can't effectively resist the spread of viruses from the Internet to the Intranet.
• D. NIP6000 can identify applications up to 6000+, implement fine-grained application protection, save export bandwidth, and ensure the business experience of key services.

Answer: A,B,D

 

NEW QUESTION 54
Which two of the following options use similar attack methods and generate a large number of useless reply packets, occupying network bandwidth and consuming device resources?

• A. Fraggle and Smurf
• B. Teardrop and Land
• C. Land and Smurf
• D. Fraggle andLand

Answer: A

 

NEW QUESTION 55
The anti-tampering technology of Huawei WAF products is based on the cache module. Assuming that user A accesses website B, website B has signs of page tampering. The workflow of the WAF tamper-resistant module has the following steps:
1, WAF uses the cached page to return to the client
2, WAF compares the server page content with the cached page content
3, After the learning is completed, the page content is stored in the cache
4, When the user accesses the web page, the WAF obtains the page content of the server
5, WAF initiates learning mode to learn the page content of the user visiting the website
Which of the following options is correct for the ordering of these steps?

• A. 5, 1, 2, 4, 3
• B. 2, 4, 1, 5, 3
• C. 3, 4, 2, 5, 1
• D. 5, 3, 4, 2, 1

Answer: D

 

NEW QUESTION 56
If Huawei USG6000 product uses its own protocol stack cache for all files passing through the device and then performs virus scanning, then the device uses a flow scan mode.

• A. TRUE
• B. FALSE

Answer: B

 

NEW QUESTION 57
Which of the following description are correct about the principles of HTTP Flood and HTTPS flood attack defense? (Multiple Choice)

• A. The principle of HTTPS flood attack is to initiate a large number of HTTPS connections to the target server, resulting in exhaustion of server resources and failure to respond to normal requests.
• B. The principle of HTTPS Flood attack is to use the URI that involves database operations or other URIs that consume system resources, causing server resources to become exhausted and unable to respond to normal requests.
• C. HTTPS flood defense can perform source authentication by limiting the packet request rate.
• D. HTTPS flood defense mode includes basic mode, enhanced mode, and 302 redirects.

Answer: A,B,C

 

NEW QUESTION 58
Which of the following are the common causes of IPS detection failures? (Multiple choices)

• A. IPS function is not enabled
• B. Policy IDs with incorrect associations between IPS policy domains
• C. IPS policy is not submitted for compilation
• D. Bypass function in IPS is turned off

Answer: A,B,C

 

NEW QUESTION 59
The administrator configured file filtering to prohibit internal employees from uploading development files, but internal employees can still upload development files. Which of the following is not possible?

• A. License is not activated
• B. The file filtering configuration file is incorrect
• C. The file filtering configuration file is not referenced in the security policy
• D. Misconfigured action for file extension mismatch

Answer: D

 

NEW QUESTION 60
Which of the following statements is wrong about HTTP behavior?

• A. When the size of the uploaded or downloaded file or the size of the POST operation reaches the blocking threshold, the system will only block uploads or subsequent file and POST operations.
• B. HTTP POST is generally used to send information to the server through a web page, such as forum posting, form submission, username/password login.
• C. When the size of the uploaded or downloaded file or the size of the POST operation reaches the alarm threshold, the system generates log information to prompt the device administrator and block the action.
• D. When the file upload operation is allowed, alarm thresholds and blocking thresholds can be configured to control the uploaded file size.

Answer: A

 

NEW QUESTION 61
Which of the following options are correct for the description of URPF technology? (Multiple Choices)

• A. In loose mode, not only the corresponding entries in the forwarding table are required, but also the interfaces must match to pass the URPF check.
• B. Does not check whether the interfaces match in the strict mode. As long as there is a route to the source address, the packets can pass.
• C. The main function is to prevent network attacks based on source address spoofing.
• D. Use the loose mode of URPF in an environment where route symmetry is not guaranteed.

Answer: C,D

 

NEW QUESTION 62
Intrusion detection is a kind of network security technology used to detect any damage or attempt to damage the confidentiality, integrity or availability of the system. Which of the following belongs to the intrusion detection knowledge base?

• A. Complete virus sample
• B. Specific behavior patterns
• C. Complete Trojan sample
• D. Security policy

Answer: B

 

NEW QUESTION 63
When misuse detection techniques are used, false positives are reported if the normal user behavior matches the intrusion signature repository successfully.

• A. True
• B. False

Answer: A

 

NEW QUESTION 64
In the Huawei USG6000 product, after the security profile is created or modified, the configuration does not take effect immediately. You need to click "Submit" in the upper right corner of the page to activate it.

• A. True
• B. False

Answer: A

 

NEW QUESTION 65
Which of the following are typical intrusions? (Multiple choices)

• A. The power supply in the equipment room is abnormally interrupted
• B. Computer is infected by U disk virus
• C. Tampering Web pages
• D. Copy/View Sensitive Data

Answer: C,D

 

NEW QUESTION 66
Analysis is the core function of intrusion detection. The analysis process of intrusion detection can be divided into three phases. The analyzer is built to analyze, feedback and refine the actual field data.
Which of these are the functions included in the first two phases?

• A. Data Processing, Attack Classification, Post Processing
• B. Data Analysis, Data Classification, Post Processing
• C. Data Processing, Data Classification, Attack Playback
• D. Data Processing, Data Classification, Post Processing

Answer: D

 

NEW QUESTION 67
Which of the following options does not belong to the security risk of the TCP/IP stack application layer?

• A. Buffer overflow
• B. System vulnerabilities
• C. Port scanning
• D. Virus

Answer: C

 

NEW QUESTION 68
In Huawei's USG6000 products, IAE provides an integrated solution. All content security detection functions are integrated in a well-designed, high-performance engine.
Which of the following is not a content security detection feature that the product supports?

• A. Application identification and awareness
• B. Video content filtering
• C. Intrusion Prevention
• D. URL classification and filtering

Answer: B

 

NEW QUESTION 69
......

Ultimate Guide to Prepare H12-722 Certification Exam for HCNP-Security: https://www.torrentexam.com/H12-722-exam-latest-torrent.html